Download
| Alert*
CVE-2004-0716
Buffer overflow in the DCE daemon (DCED) for the DCE endpoint mapper (epmap) on HP-UX 11 allows remote attackers to execute arbitrary code via a request with a small fragment length and a large amount of data. CVE-2003-1374 Buffer overflow in disable of HP-UX 11.0 may allow local users to execute arbitrary code via a long argument to the (1) -r or (2)-c options. CVE-1999-0693 Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges. CVE-1999-0502 A Unix account has a default, null, blank, or missing password. CVE-1999-0318 Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. CVE-2000-0083 HP asecure creates the Audio Security File audio.sec with insecure permissions, which allows local users to cause a denial of service or gain additional privileges. CVE-2000-0078 The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command. CVE-2000-0077 The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands. CVE-2001-0105 Vulnerability in top in HP-UX 11.04 and earlier allows local users to overwrite files owned by the "sys" group. CVE-2001-0311 Vulnerability in OmniBackII A.03.50 in HP 11.x and earlier allows attackers to gain unauthorized access to an OmniBack client. CVE-2002-2262 Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors. |